Systems and methods for providing eletronic archiving

ABSTRACT

Systems and methods are disclosed for providing secure electronic archiving of customer ( 120 ) data over a network ( 110 ). Electronic postmarks are used to track archival of the data, access request for the archived ( 101 ) data, and fulfillment of the access requests.

CROSS REFERENCE TO RELATED APPLICATION

[0001] This application claims priority from U.S. ProvisionalApplication Serial No. 60/231,337, filed Sep. 8, 2000, by Leo J.Campbell and titled SYSTEMS AND METHODS FOR PROVIDING ELECTRONICARCHIVING, the disclosure of which is expressly incorporated herein byreference.

DESCRIPTION OF THE INVENTION

[0002] 1. Field of the Invention

[0003] This invention relates to providing secure electronic archivingof customer data over a network. In addition, this invention relates toprocessing requests for the access of the electronic information to acustomer or a third party specified by the customer.

[0004] 2. Background of the Invention

[0005] Current electronic archive systems provide for the long-termstorage of electronic files. Typically such systems require specializedsoftware and/or are incorporated in document management softwarepackages, such as DocuXplorer by Archive Power Systems, Inc. One knownsystem for providing archival and retrieval of electronic messages, suchas emails and their attachments, is ZANTAZ, by Zantaz, Inc. What isneeded is a secure archive system for archival and retrieval of customerdata files by incorporating secure customer identification through theuse of digital certificates, and by utilizing electronic postmarks(“EPMs”) to store customer data and to facilitate tracking of customerdata. What is also needed is a secure archive system that is independentof customer hardware and software platforms.

SUMMARY OF THE INVENTION

[0006] The present invention provides an archive system that customersmay access through a browser over a network using secure communicationtransmissions, and using electronic postmarks (“EPMs”) to facilitatetracking of customer data. An EPM is a time-stamped andcryptographically sealed digital hash that accompanies an electronicmessage, to detect modification of the latter. The EPM for a message mayinclude a time and date stamp indicating when the EPM was generated. Thecontents of an EPM are digitally “sealed” by the addition of a digitalsignature. An exemplary EPM is described in U.S. Ser. No. 09/675,677,filed Sep. 29, 2000, by Leo J. Campbell et al. and titled “Systems andMethods for Authenticating an Electronic Message,” the disclosure ofwhich is expressly incorporated herein by reference to its entirety. Inaddition, an embodiment of the invention provides an archive system thatis independent of customer hardware and software platforms.

[0007] More specifically, and in accordance with an embodiment of theinvention, systems and methods are disclosed for providing customeraccessible archiving of electronic files. Such systems and methodsprovide for establishing an account for a customer; receiving from thecustomer a storage request for archiving, wherein the storage requestincludes the electronic file and customer identification information;creating a storage EPM corresponding to the storage request; and storingthe electronic file together with the storage EPM.

[0008] In accordance with another embodiment of the invention, systemsand methods are disclosed for providing a customer access to theelectronic files in an archive, wherein the electronic file is storedwith a storage EPM. Such systems and methods receive an access requestfrom the customer for the electronic file, wherein the access requestincludes the customer identification information and informationidentifying the electronic file in the archive; verify that the customermay access the electronic file based on the customer identificationinformation and the information identifying the electronic file in thearchive; retrieve the stored electronic file from the archive; andprovide the retrieved electronic file to the customer.

[0009] In accordance with yet another embodiment of the invention,systems and methods are disclosed for providing access to an electronicfile in an archive to a third party, wherein the electronic file isstored with a storage EPM. Such systems and methods provide forreceiving from a customer a link request to permit access of theelectronic file by the third party, wherein the link request includesinformation identifying the electronic file in the archive, customeridentification information including the customer's digital certificate,and the third party's digital certificate; authenticating the customerbased on the customer identification information; linking the customer'sdigital certificate to the third party's digital certificate, when thecustomer has been authenticated; receiving an access request from thethird party, wherein the access request includes identificationinformation about the third party and the information identifying theelectronic file in the archive; verifying that the third party mayaccess the electronic file based on identification information about thethird party; retrieving the electronic file from the archive; andproviding the retrieved electronic file to the third party.

[0010] It is to be understood that both the foregoing generaldescription and the following detailed description are exemplary andexplanatory only and are not restrictive of the invention, as claimed.

[0011] The accompanying drawings, which are incorporated in andconstitute a part of this specification, illustrate embodiments of theinvention and together with the description, serve to explain theprinciples of the invention.

BRIEF DESCRIPTION OF THE DRAWINGS

[0012]FIG. 1 is a block diagram of a networked system including anarchive system consistent with the present invention.

[0013]FIG. 2 is an expanded block diagram of archive system of FIG. 1.

[0014]FIG. 3 is a flowchart showing a method for archiving electronicdata consistent with the present invention.

[0015]FIG. 3A is a block diagram of a storage EPM consistent with thepresent invention.

[0016]FIG. 4 is a flowchart showing a method for retrieving archiveddata by a customer consistent with the present invention.

[0017]FIG. 5 is a flowchart showing a method for retrieving archiveddata by a third party consistent with the present invention.

DESCRIPTION OF THE EMBODIMENTS

[0018] Reference will now be made in detail to the exemplary embodimentsconsistent with the invention, examples of which are illustrated in theaccompanying drawings. Wherever possible, the same reference numberswill be used throughout the drawings to refer to the same or like parts.

[0019]FIG. 1 is a block diagram of a networked system 100 for providingarchive services to customers. System 100 may include one or morearchive systems 101 connected to a plurality of customer systems 120through a network 110. Network 110 may include, for example, a LocalArea Network (LAN), a Wide Area Network (WAN), a wireless network, theInternet, an intranet, and/or any other network or communication mediumknown to one of ordinary skill in the relevant art. Communicationsbetween archive system 101 and customer systems 120 may take place overnetwork 110 through a secure sockets layer (“SSL”) protocol or secureHyperText Transfer Protocol (“S-HTTP”).

[0020]FIG. 2 is a block diagram of an archive system 101 consistent withthe present invention. Archive system 101 may include a processor 200,which connects over bus 210 to a memory 220, a secondary storage 230, anetwork interface component 240, an input/output interface component250, an archive database 260, and an authorization database 270. Memory220 may include an archive administrator component 275 and an operatingsystem 280. Alternatively archive database 260 and authorizationdatabase 270 may be combined into a single database.

[0021] Operation of archive system 101 is generally controlled andcoordinated by operating system 280. Operating system 280 controlsallocation of system resources and performs tasks, such as memorymanagement, process scheduling, networking, and services, among otherthings.

[0022] Secondary storage 230 may include a computer-readable medium,such as a hard disk drive and a compact disc (“CD”) drive or aread/write CD drive. From the CD drive or the read/write CD drive,software and data may be loaded onto the disk drive, which may then becopied into memory 220. Similarly, software and data in memory 220 maybe copied onto the hard disk drive, which may then be loaded onto aread/write CD drive.

[0023] Network interface component 240 may include hardware and softwarefor sending and receiving data over network 110 (see FIG. 1). Archivesystem 101 may communicate with one or more customer systems 120 overnetwork 110 through network interface component 240.

[0024] Input/Output interface component 250 may include one or more of,a keyboard, a pointing device, a voice recognition device, a keypad,display unit, or a printing device. Archive database 260 may include oneor more databases and/or data files for the storage of data relating tocustomers 120. Authorization database 270 may include one or moredatabases and/or data files for storing information about customerarchival transactions.

[0025]FIG. 3 is a flowchart showing a method for archiving electronicdata. The electronic data may include, for example, an electronic file.As shown in FIG. 3, a customer 120 may use a browser, such as theMicrosoft Internet Explorer or a SUPER Browser, to access a web page onan archive system 101 to establish an account with an archiveadministrator over network 110 (stage 310). An exemplary SUPER Browseris described in U.S. Serial No. 60/294,001, filed May 30, 2001, by LeoJ. Campbell and titled “Secure Universal Postal Encrypted Resource(SUPER) Browser,” the entire disclosure of which is expresslyincorporated herein by reference. An archive administrator may include,for example, the United States Postal Service (“USPS”).

[0026] With reference to FIGS. 1 and 2, archive administrator component275 may receive identification information from customer 120, forexample, a username, password, company, email address, physical address,etc. Archive administrator component 275 determines based on theidentification information, whether customer 120 has a digitalcertificate of authority (“digital certificate”). If customer 120 doesnot have a digital certificate, archive administrator component 275generates a digital certificate for customer 120 and sends it tocustomer 120 over network 110. Archive administrator component 275 maystore identification information including information about digitalcertificates for customers 120 in an access authorization database 270.The identification information may be used to link access authorizationdatabase 270 with archive database 260. Archive administrator component275 may be implemented in any computer programming language or softwaretool, such as C++, C, Java, Hypertext Markup Language (“HTML”), VisualBasic, etc.

[0027] A digital certificate may be used to uniquely identify a customerand to provide authorization to a customer for access of electronicinformation, such as an archived electronic file. An exemplary digitalcertificate of authority is described in U.S. Ser. No. 09/809,325, filedMar. 16, 2001, by Leo J. Campbell et al. and titled “Methods and Systemsfor Proofing Identities Using a Certificate Authority,” the entiredisclosure of which is expressly incorporated herein by reference. Forexample, the USPS provides a public key infrastructure, which includes,among other things, the generation of digital certificates.

[0028] Returning to FIG. 3, once a customer 120 has an account, thecustomer may submit to archive system 101 over network 110, a storagerequest for archiving data (stage 320). The storage request includes anelectronic file that may include a record, data, a database, acompressed file, a music file, etc. In addition, the storage requestincludes customer identification information, such as a digitalcertificate and optionally a name and password. Archive administratorcomponent 275 creates a storage request EPM and applies it to thestorage request by generating a storage request record for thetransaction in transaction log 265 in archive database 260 (stage 330).The storage request EPM may be used to track the archival of theelectronic file. A storage request EPM may include the time and date ofthe request, and customer identification information, allowing archivesystem 101 to keep track of storage request transactions. Thereafter,archive administrator component 275 creates a storage EPM 370 based onthe electronic file.

[0029] As shown in FIG. 3A, archive administrator component 275 createsthe storage EPM 370 by generating a hash file 374 from the electronicfile 372, and storing the hash file 374 in storage EPM 370 (stage 340).Archive administrator component 275 may generate hash file 374 usingknown hashing techniques, such as a Secure Hash Algorithm (“SHA-1), atechnique based on an algorithm provided by Rivest, Shamir, and Adelman(“RSA”), and a Message Digest algorithm (“MD5”). Archive administratorcomponent 275 also stores in storage EPM 370 a time and date stamp 375to indicate the time and date of the storage of the electronic file. Inaddition, archive administrator component 275 may store in storage EPM370 a digital signature 376 having a digital key 377 for digitallysecuring the storage EPM 370. Further, archive administrator component275 may store customer identification information in storage EPM 370.

[0030] Thereafter, as shown in FIG. 3, archive administrator component275 stores the storage EPM 370 in archive database 260 (stage 350).Archive database 260 may include tables for storing storage EPMs, logsfor EPM transactions, and archive administrator system files. At thispoint, archive administrator component 275 may bill customer 120 forstorage of the electronic file (stage 360). The electronic file mayremain in storage for a length of time that is determined by customer120.

[0031]FIG. 4 is a flowchart showing a method for retrieving archiveddata by a customer. As shown in FIG. 4, a customer 120 may submit toarchive system 101 over network 110 an access request for an archivedelectronic file (stage 410). The access request includes informationidentifying the archived electronic file and customer identificationinformation, such as a digital certificate and optionally a name andpassword. The information identifying the archived electronic file mayinclude, for example, a filename for the electronic file. Archiveadministrator component 275 creates an access request EPM based on thecustomer identification information, and applies it to the accessrequest by generating a record for the transaction in transaction log265 in archive database 260 (stage 420). The access request EPM may beused to track access requests for the archived electronic file and mayinclude the time and date of the access request, and customeridentification information.

[0032] Archive administrator component 275 then verifies whethercustomer 120 is allowed to access the archived electronic file, usinginformation in authorization database 270, customer identificationinformation, and information identifying the archived electronic file(stage 430). If customer 120 is not allowed access to the archivedelectronic file (“No”), archive administrator component 275 may send anappropriate message to customer 120 and terminates the transaction(stage 490). Otherwise (“Yes”), archive administrator component 275retrieves a copy of the archived electronic file from archive database260 (stage 440). More specifically, archive administrator component 275retrieves the storage EPM 370 from archive database 260 based on thecustomer identification information and the information identifying thearchived electronic file. Next, archive administrator component 275retrieves the archived electronic file from the hash of data 374 in thestorage EPM 370.

[0033] In addition, archive administrator component 275 creates anaccess EPM and applies it to the archived electronic file by generatinga record for the transaction in a transaction log 265 in the archivedatabase 260 (stage 450). An access EPM includes the time and date onwhich the access request was processed by the archive system 101.

[0034] Thereafter, archive administrator component 275 provides customer120 access to the electronic file by sending the copy of the electronicfile to customer 120 over network 110 (stage 460). Alternatively,archive administrator component 275 may send the electronic file to afile server, and send the location of the electronic file at the fileserver to customer 120. In addition, archive administrator component 275may bill customer 120 for access of the archived electronic file (stage470). Customer 120 may make changes to the electronic file, and mayrequest the revised electronic file be archived by archive system 101.

[0035]FIG. 5 is a flowchart showing a method for retrieving archiveddata by a third party. Sometime during the life of the storage of theelectronic file, a third party may wish to access customer 120information in archive system 101. A customer 120 may share with a thirdparty the customer's access privileges for one or more electronic filesthrough the use of digital certificates. An authorized third party'sdigital certificate may be linked to the customer's digital certificate,thereby giving the third party access into the electronic archive system101 for one or more archived electronic files specified by customer 120.

[0036] As shown in FIG. 5, a customer 120 may submit to the archivesystem 101 over network 110 a link request to permit a third party toaccess an archived electronic file to which customer 120 has access(stage 510). The link request may include information identifying thearchived electronic file, customer identification information, such as adigital certificate and optionally a name and password, and a thirdparty's digital certificate. The information identifying the archivedelectronic file may include, for example, a filename for the electronicfile. Archive administrator component 275 creates a link request EPM andapplies it to the link request by generating a record for thetransaction in transaction log 265 in archive database 260 (stage 515).A link request EPM may include the time and date of the link request,the information identifying the archived electronic file, the customeridentification information, and information about the third party'sdigital certificate.

[0037] Archive administrator component 275 verifies that customer 120 isallowed to access the archived electronic file, using information inauthorization database 270 and the customer identification information(stage 517). If customer 120 is not allowed access to the archivedelectronic file (“No”), archive administrator component 275 sends anappropriate message to customer 120 and terminates the transaction(stage 590). Otherwise (“Yes”), archive administrator component 275links the customer's digital certificate to the third party's digitalcertificate for access to the archived electronic file (stage 520). Inaddition, archive administrator component 275 creates a link EPM andapplies it to the archived electronic file by generating a record forthe transaction in transaction log 265 in archive database 260. A linkEPM may include the time and date on which the customer's digitalcertificate was electronically linked to the third party's digitalcertificate, information about the third party's digital certificate,and an index link to the storage EPM that includes the electronic file.

[0038] Thereafter, the third party may submit to the archive system 101over network 110 an access request for the archived electronic file, theaccess request including information identifying the archived electronicfile, and identification information about the third party, such as thethird party's digital certificate and optionally a name and password(stage 525). The information identifying the archived electronic filemay include, for example, a filename for the electronic file. Archiveadministrator component 275 creates an access request EPM and applies itto the access request by generating a record for the transaction intransaction log 265 in archive database 260 (stage 530). The accessrequest EPM may be used to track access requests for the archivedelectronic file. An access request EPM may include the time and date ofthe access request and identification information about the third party,allowing archive system 101 to keep track of access requesttransactions.

[0039] Archive administrator component 275 verifies that the third partyis allowed to access the archived electronic file (stage 535). Archiveadministrator component 275 may determine whether the third party isallowed access to the archived electronic file based on information inthe authorization database 270 and the identification information aboutthe third party (stage 540). If the third party is not allowed access tothe electronic file (“No”), archive administrator component 275 sends anappropriate message to the third party and terminates the transaction(stage 590). Otherwise (“Yes”), archive administrator component 275retrieves a copy of the archived electronic file from archive database260 (stage 550). More specifically, archive administrator component 275retrieves the storage EPM 370 from archive database 260 based on thethird party identification information and the information identifyingthe archived electronic file. Next, archive administrator component 275retrieves the archived electronic file from the hash of data 374 in thestorage EPM 370.

[0040] In addition, archive administrator component 275 creates anaccess EPM and applies it to the archived electronic file by generatinga record for the transaction in transaction log 265 in archive database260 (stage 560). An access EPM includes the time and date on which theaccess request was processed by the archive system 101, allowing archivesystem 101 to keep track of information about the access of the archivedelectronic file.

[0041] Thereafter, archive administrator component 275 allows the thirdparty to access the electronic file by sending the copy of theelectronic file to the third party over network 110 (stage 570).Alternatively, archive administrator component 275 may send theelectronic file to a file server, and send the location of theelectronic file at the file server to the third party. In addition,archive administrator component 275 may bill customer 120 for access ofthe electronic file (stage 580). The third party may make changes to theelectronic file, and customer 120 may request the revised electronicfile be archived by archive system 101.

[0042] Other embodiments of the invention will be apparent to thoseskilled in the art from consideration of the specification and practiceof the invention disclosed herein. It is intended that the specificationand examples be considered as exemplary only, with a true scope andspirit of the invention being indicated by the following claims.

What is claimed is:
 1. A method for providing secure archiving of anelectronic file, comprising: establishing an account for a customer;receiving from the customer a storage request for archiving, wherein thestorage request includes the electronic file and customer identificationinformation; creating a storage electronic postmark corresponding to thestorage request, wherein the storage electronic postmark includes theelectronic file; and storing the electronic file together with thestorage electronic postmark in a database.
 2. The method of claim 1,wherein the storage electronic postmark includes the customeridentification information.
 3. The method of claim 2, wherein thecustomer identification information includes a digital certificate. 4.The method of claim 3, wherein the customer identification informationfurther includes a name and password.
 5. The method of claim 1, furthercomprising: creating a storage request electronic postmark correspondingto the storage request, wherein the storage request electronic postmarkincludes the customer identification information; and storing thestorage request electronic postmark in the database.
 6. A system forproviding secure archiving of an electronic file, comprising: means forestablishing an account for a customer; means for receiving from thecustomer a storage request for archiving, wherein the storage requestincludes the electronic file and customer identification information;means for creating a storage electronic postmark corresponding to thestorage request, wherein the storage electronic postmark includes theelectronic file; and means for storing the electronic file together withthe storage electronic postmark in a database.
 7. The system of claim 6,further comprising: means for creating a storage request electronicpostmark corresponding to the storage request, wherein the storagerequest electronic postmark includes the customer identificationinformation; and means for storing the storage request electronicpostmark in the database.
 8. A system for providing secure archiving ofan electronic file, comprising: a component for establishing an accountfor a customer; a component for receiving from the customer a storagerequest for archiving, wherein the storage request includes theelectronic file and customer identification information; a component forcreating a storage electronic postmark corresponding to the storagerequest, wherein the storage electronic postmark includes the electronicfile; and a component for storing the electronic file together with thestorage electronic postmark in a database.
 9. The system of claim 8,further comprising: a component for creating a storage requestelectronic postmark corresponding to the storage request, wherein thestorage request electronic postmark includes the customer identificationinformation; and a component for storing the storage request electronicpostmark in the database.
 10. A method for providing access to a securedelectronic file to a customer, the method comprising: providing adatabase wherein the electronic file and customer identificationinformation are stored with a storage electronic postmark; receiving anaccess request from the customer for the electronic file, wherein theaccess request includes the customer identification information andinformation identifying the electronic file in the database; verifyingthat the customer is allowed to access the electronic file based on thecustomer identification information and the information identifying theelectronic file in the database; retrieving the stored electronic filefrom the database; and providing the retrieved electronic file to thecustomer.
 11. The method of claim 10, wherein the customeridentification information includes a digital certificate.
 12. Themethod of claim 11, wherein the customer identification informationfurther includes a name and password.
 13. The method of claim 10,further comprising: creating an access request electronic postmarkcorresponding to the access request, wherein the access requestelectronic postmark includes the customer identification information;and storing the access request electronic postmark in the database. 14.The method of claim 10, further comprising: creating an accesselectronic postmark; and storing the access electronic postmark in thedatabase.
 15. The method of claim 10, wherein the informationidentifying the electronic file in the database includes a filename. 16.The method of claim 10, wherein the step of retrieving the storedelectronic file from the database comprises: extracting the storedelectronic file from the storage electronic postmark.
 17. A system forproviding access to a secured electronic file to a customer, the systemcomprising: means for providing a database wherein the electronic fileand customer identification information are stored with a storageelectronic postmark; means for receiving an access request from thecustomer for the electronic file, wherein the access request includesthe customer identification information and information identifying theelectronic file in the database; means for verifying that the customermay access the electronic file based on the customer identificationinformation and the information identifying the electronic file in thedatabase; means for retrieving the stored electronic file from thedatabase; and means for providing the retrieved electronic file to thecustomer.
 18. The system of claim 17, further comprising: means forcreating an access request electronic postmark corresponding to theaccess request, wherein the access request electronic postmark includesthe customer identification information; and means for storing theaccess request electronic postmark in the database.
 19. The system ofclaim 17, further comprising: means for creating an access electronicpostmark; and means for storing the access electronic postmark in thedatabase.
 20. The system of claim 17, wherein the means for retrievingthe stored electronic file from the database comprises: means forextracting the stored electronic file from the storage electronicpostmark.
 21. A system for providing access to a secured electronic fileto a customer, the system comprising: a component for providing adatabase wherein the electronic file and customer identificationinformation are stored with a storage electronic postmark; a componentfor receiving an access request from the customer for the electronicfile, wherein the access request includes the customer identificationinformation and information identifying the electronic file in thedatabase; a component for verifying that the customer may access theelectronic file based on the customer identification information and theinformation identifying the electronic file in the database; a componentfor retrieving the stored electronic file from the database; and acomponent for providing the retrieved electronic file to the customer.22. The system of claim 21, further comprising: a component for creatingan access request electronic postmark corresponding to the accessrequest, wherein the access request electronic postmark includes thecustomer identification information; and a component for storing theaccess request electronic postmark in the database.
 23. The system ofclaim 21, further comprising: a component for creating an accesselectronic postmark; and a component for storing the access electronicpostmark in the database.
 24. The system of claim 21, wherein thecomponent for retrieving the stored electronic file from the databasecomprises: a component for extracting the stored electronic file fromthe storage electronic postmark.
 25. A method for providing access to asecured electronic file to a third party, the method comprising:providing a database wherein the electronic file and customeridentification information are stored with a storage electronicpostmark; receiving from a customer a link request to permit access ofthe electronic file by the third party, wherein the link requestincludes information identifying the electronic file in the database,the customer identification information including the customer's digitalcertificate, and the third party's digital certificate; authenticatingthe customer based on the customer identification information; linkingthe customer's digital certificate to the third party's digitalcertificate, when the customer has been authenticated; receiving anaccess request from the third party, wherein the access request includesidentification information about the third party and the informationidentifying the electronic file in the database; verifying that thethird party may access the electronic file based on identificationinformation about the third party; retrieving the electronic file fromthe database; and providing the retrieved electronic file to the thirdparty.
 26. The method of claim 25, wherein the customer identificationinformation further includes a name and password.
 27. The method ofclaim 25, wherein the identification information about the third partyincludes the third party's digital certificate.
 28. The method of claim27, wherein the identification information about the third party furtherincludes a name and password.
 29. The method of claim 25, furthercomprising: creating a link request electronic postmark corresponding tothe link request; and storing the link request electronic postmark inthe database.
 30. The method of claim 25, further comprising: creatingan access request electronic postmark corresponding to the accessrequest; and storing the access request electronic postmark in thedatabase.
 31. The method of claim 25, further comprising: creating anaccess electronic postmark corresponding to the retrieval of theelectronic file; and storing the access electronic postmark in thedatabase.
 32. The method of claim 25, wherein the informationidentifying the electronic file in the database includes a filename. 33.The method of claim 25, wherein the step of retrieving the storedelectronic file from the database comprises: extracting the storedelectronic file from the storage electronic postmark.
 34. A system forproviding access to a secured electronic file to a third party, thesystem comprising: means for providing a database wherein the electronicfile and customer identification information are stored with a storageelectronic postmark; means for receiving from a customer a link requestto permit access of the electronic file by the third party, wherein thelink request includes information identifying the electronic file in thedatabase, the customer identification information including thecustomer's digital certificate, and the third party's digitalcertificate; means for authenticating the customer based on the customeridentification information; means for linking the customer's digitalcertificate to the third party's digital certificate, when the customerhas been authenticated; means for receiving an access request from thethird party, wherein the access request includes identificationinformation about the third party and the information identifying theelectronic file in the database; means for verifying that the thirdparty may access the electronic file based on identification informationabout the third party; means for retrieving the electronic file from thedatabase; and means for providing the retrieved electronic file to thethird party.
 35. The system of claim 34, further comprising: means forcreating a link request electronic postmark corresponding to the linkrequest; and means for storing the link request electronic postmark inthe database.
 36. The system of claim 34, further comprising: means forcreating an access request electronic postmark corresponding to theaccess request; and means for storing the access request electronicpostmark in the database.
 37. The system of claim 34, furthercomprising: means for creating an access electronic postmarkcorresponding to the retrieval of the electronic file; and means forstoring the access electronic postmark in the database.
 38. The systemof claim 34, wherein the means for retrieving the stored electronic filefrom the database comprises: means for extracting the stored electronicfile from the storage electronic postmark.
 39. A system for providingaccess to a secured electronic file to a third party, the systemcomprising: a component for providing a database wherein the electronicfile and customer identification information are stored with a storageelectronic postmark; a component for receiving from a customer a linkrequest to permit access of the electronic file by the third party,wherein the link request includes information identifying the electronicfile in the database, the customer identification information includingthe customer's digital certificate, and the third party's digitalcertificate; a component for authenticating the customer based on thecustomer identification information; a component for linking thecustomer's digital certificate to the third party's digital certificate,when the customer has been authenticated; a component for receiving anaccess request from the third party, wherein the access request includesidentification information about the third party and the informationidentifying the electronic file in the database; a component forverifying that the third party may access the electronic file based onidentification information about the third party; a component forretrieving the electronic file from the database; and a component forproviding the retrieved electronic file to the third party.
 40. Thesystem of claim 39, further comprising: a component for creating a linkrequest electronic postmark corresponding to the link request; and acomponent for storing the link request electronic postmark in thedatabase.
 41. The system of claim 39, further comprising: a componentfor creating an access request electronic postmark corresponding to theaccess request; and a component for storing the access requestelectronic postmark in the database.
 42. The system of claim 39, furthercomprising: a component for creating an access electronic postmarkcorresponding to the retrieval of the electronic file; and a componentfor storing the access electronic postmark in the database.
 43. Thesystem of claim 39, wherein the component for retrieving the storedelectronic file from the database comprises: a component for extractingthe stored electronic file from the storage electronic postmark.
 44. Amethod for creating a customer accessible database, comprising: creatinga first table for storing electronic postmark transactions; storing theelectronic postmark transactions in the first table; creating a secondtable for storing an electronic file with a storage electronic postmarkand; storing the electronic file with the storage electronic postmark inthe second table.
 45. The method of claim 44, wherein the electronicpostmark transactions include at least one of storage request electronicpostmark, access request electronic postmark, access electronicpostmark, link request electronic postmark, link electronic postmark,and customer identification information.
 46. The method of claim 45,wherein the customer identification information includes a digitalcertificate.
 47. The method of claim 46, wherein the customeridentification information further includes a name and password.
 48. Asystem for creating a customer accessible database, comprising: meansfor creating a first table for storing electronic postmark transactions;means for storing the electronic postmark transactions in the firsttable; means for creating a second table for storing an electronic filewith a storage electronic postmark and; means for storing the electronicfile with the storage electronic postmark in the second table.
 49. Amethod for accessing a customer accessible database having at least oneof storage electronic postmark, storage request electronic postmark,access request electronic postmark, access electronic postmark, linkrequest electronic postmark, link electronic postmark, and customeridentification information, the system comprising: creating a recordincluding at least one of storage electronic postmark, storage requestelectronic postmark, access request electronic postmark, accesselectronic postmark, link request electronic postmark, and linkelectronic postmark; storing the record in the database; and retrievingthe record from the database.
 50. The method of claim 49, furthercomprising extracting an electronic file from the retrieved record thatincludes the storage electronic postmark.
 51. A system for accessing acustomer accessible database having at least one of storage electronicpostmark, storage request electronic postmark, access request electronicpostmark, access electronic postmark, link request electronic postmark,link electronic postmark, and customer identification information, thesystem comprising: means for creating a record including at least one ofstorage electronic postmark, storage request electronic postmark, accessrequest electronic postmark, access electronic postmark, link requestelectronic postmark, and link electronic postmark; means for storing therecord in the database; and means for retrieving the record from thedatabase.
 52. The system of claim 51, further comprising means forextracting an electronic file from the retrieved record that includesthe storage electronic postmark.